Hola Folks,
Thats actually my first week as ELK stack work so I am testing some stuff to end up with a live analysis for all our servers with help of collectd (that's the plan)
Anyways, here is my first logstash conf file and I need to know how usually people troubleshoot this:
$ cat logstash-rubbish.log | ./logstash-2.3.4/bin/logstash -f ./logstash-config-files/test-config.conf -w 1
Settings: User set pipeline workers: 1, Default pipeline workers: 12
Pipeline main started
Pipeline main has been shutdown
stopping pipeline {:id=>"main"}
How to tourbleshoot this, bearing in mind I am using elasticsearch-2.3.5 and it seems to be working
curl -XGET localhost:9200/_template/logstash
{"logstash":{"order":0,"template":"logstash-","settings":{"index":{"refresh_interval":"5s"}},"mappings":{"default":{"dynamic_templates":[{"message_field":{"mapping":{"fielddata":{"format":"disabled"},"index":"analyzed","omit_norms":true,"type":"string"},"match_mapping_type":"string","match":"message"}},{"string_fields":{"mapping":{"fielddata":{"format":"disabled"},"index":"analyzed","omit_norms":true,"type":"string","fields":{"raw":{"ignore_above":256,"index":"not_analyzed","type":"string"}}},"match_mapping_type":"string","match":""}}],"_all":{"omit_norms":true,"enabled":true},"properties":{"@timestamp":{"type":"date"},"geoip":{"dynamic":true,"properties":{"ip":{"type":"ip"},"latitude":{"type":"float"},"location":{"type":"geo_point"},"longitude":{"type":"float"}}},"@version":{"index":"not_analyzed","type":"string"}}}},"aliases":{}}}[hegz@ansible-machine-2 ~]$
but when running any logstash conf file no luck at all, any suggestions.
BTW, I am just following the docs as well as some Youtube tutorials as a starter?